@_

#!/usr/local/bin/perl ########################################## #제작자: 윤석범 (http://yCHAT.ml.org) #자료실 7.0 (1998년 10 월 4일) ########################################################################### ########################################## # Modified by jylee@math.ewha.ac.kr # 1. Multi-DB : using ?grade=0a&topic=0 # 2. Unified $base_dir/data.txt -> Upcount.txt # 3. $base_dir/filelist.txt -> list_txt = List-??.txt # 4. $path/* -> UpFiles/gradename/* # 5. pcode : Time dependent passcode to avoid automatic input (2008/1/28) ########################################## $cgi_url = "index.cgi"; #cgi 화일 위치 URL $icon_url = "icons"; #icon 저장위치 URL $page_display = 20; #한 화면에 보여줄 글 수 $admin_pass = "235711"; #관리자 암호 $data_txt = "UpCount.txt"; # Unique File ID (increamental counter) # p*43189669*832429 = p (mod n) where n=60*60*24*365=2^7*3^3*5^3*73 $pcode = time() % (60*60*24*365); # 1 (Year) = 31536000 (Second) ###################################################################### &get_input; $gradeidx = 0; @gradecode=('1a', '2a'); @gradename=('Handout','Software'); for ($i=0; $i<=$#gradecode; $i++) { if ( $gradecode[$i] eq $INV{'grade'} ) { $gradeidx = $i; } } $list_txt = "List-$gradecode[$gradeidx].txt"; $UpFiles = "UpFiles/$gradename[$gradeidx]"; # $topicidx = 0; @topiclist=('전산수학|유한수학|수치해석|과학계산|기타', '수학|네트웍|멀티미디어|기타'); @topicname = ('전체내용',split('[|]',$topiclist[$gradeidx])); @topicname2 = ('일반',split('[|]',$topiclist[$gradeidx])); if ( $INV{'topic'} <= $#topicname & $INV{'topic'} >= 0 ) { $topicidx = $INV{'topic'}; } $gradeCGI = "grade=$gradecode[$gradeidx]"; $topicCGI = ($topicidx!=0) ? "&topic=$topicidx" : ""; $keywdCGI = ($INV{'keyword'} ne "") ? "&keyword=$INV{'keyword'}" : ""; ####################################################################### if ($INV{'action'} eq "") { &openfile; &display; } ############################################################################## sub openfile { if ( $topicidx==0 && $INV{'keyword'} eq "" ) { open (DATAFILE, "$list_txt"); @Data = ; close (DATAFILE); $tot_num = @Data; $all_num = $tot_num; return; } if ( $topicidx!=0 && $INV{'keyword'} ne "" ) { $regex = "$topicname[$topicidx].*$INV{'keyword'}"; } elsif ( $topicidx!=0 ) { $regex = $topicname[$topicidx]; } else { $regex = $INV{'keyword'}; } @Data = (); $tot_num = 0; $all_num = 0; open (DATAFILE, "$list_txt"); foreach $Line () { $all_num++; if ($Line =~ m/$regex/i) { $tot_num++; push(@Data, $Line); } } close (DATAFILE); } ####################################################################### sub display { $cgi_url_now = "$cgi_url?$gradeCGI"; $tot_page= int($tot_num/$page_display); if ($tot_num==0 || $tot_page<($tot_num/$page_display)) { $tot_page = $tot_page+1; } $page = ( $INV{'page'} ne "" ) ? $INV{'page'} : $tot_page ; $page = ( $page=>1 && $page<=$tot_page ) ? $page : $tot_page; &html_header(""); print "$gradename[$gradeidx] 자료실의 "; print "$all_num개 자료 중 "; print "$topicname[$topicidx] 항목"; if ( $INV{'keyword'} ne "" ) { print "에서 $INV{'keyword'}"; } print " 관련 자료는 $tot_num개 입니다.\n"; print "

\n"; print "\n"; $start_count = ($page-1) * $page_display; $end_count = $page * $page_display - 1; if ( $end_count > $tot_num-1 ) { $end_count = $tot_num-1; $start_count = $end_count-$page_display+1; $start_count = $start_count<0 ? 0 : $start_count; } for ($h=$start_count;$h<=$end_count;$h++) { $Message = $Data[$h]; @TempData = split (/\|/, $Message); $rmfile = $TempData[2]; if ( $TempData[7] !~ "http" ) { $File = "" } else { $File = ""; } if ( $TempData[4] eq "") { $up_person = $TempData[3]; } elsif ($TempData[4] =~ /:/ ) { $up_person = "$TempData[3]"; } else { $up_person = "$TempData[3]"; } print " $File \n"; } print "

종류	화일 이름	화일 설명	등록자	등록일	전송	삭제
" . "$TempData[2]" . "($TempData[7])	" . "$TempData[2]
$TempData[9]	$TempData[5]	$up_person	$TempData[6]	$TempData[8]

\n"; print "|\n"; for ($i=1;$i<$page;$i++) { print " $i |\n"; } print "$page |\n"; for ($i=$page+1;$i<=$tot_page;$i++) { print " $i |\n"; } print "

\n"; &tailer; print "\n"; exit; } sub html_header { print "Content-type: text/html\n\n"; print "\n"; print "@_\n"; print < EOT print "\n"; print "\n"; print "@_\n"; } sub tailer { print "\n"; print "\n"; print "\n"; print ""; print ""; print "

"; print " 자료등록

"; print "

\n"; &button2; print "

\n"; } sub button2 { $cgi_url_now = "$cgi_url?$gradeCGI$topicCGI$keywdCGI"; if ($page > 1) { print " \n"; } else { # print "\n"; } if ($page < $tot_page) { print " \n"; } else { # print "\n"; } } ################################################################ if ($INV{'action'} eq "down") { $f_name = "$INV{'f_name'}"; &openfile; open(FIL, ">$list_txt"); for ($i=0;$i<=$tot_num;$i++) { $dd = $Data[$i]; @Tem = split(/\|/,$dd); if ($Tem[2] eq $f_name) { $Tem[8] = $Tem[8]+1; print FIL join('|',@Tem); } else { print FIL $dd; } } close FIL; @t = split(/[.]/,$f_name); $ext_name = ($#t!=0) ? "$t[$#t]" : ""; $ext_name =~ tr/A-Z/a-z/; %type_list=( 'hwp','application/hwp', 'ppt','application/ppt', 'txt', 'text/plain'); if ( $type_list{"$ext_name"} ne "" ) { $ext_type = $type_list{"$ext_name"}; } elsif ( $ext_name ne "" ) { $ext_type = "applicatoin/$ext_name"; } else { $ext_type = "application/octet-stream"; } print "Content-type: $ext_type\n"; print "Content-Disposition: attachment; filename=\"$f_name\"\n\n"; open (FILE, "$UpFiles/$f_name") ; binmode(FILE); binmode(STDOUT); binmode(STDERR); print ; close (FILE); exit; } ######################################################### if ($INV{'action'} eq "post") { &html_header('자료등록'); print "
\n"; print "
E-Mail난에는 전자우편주소나 홈페이지 주소를 쓰실 수 있습니다.\n"; print "
화일등록 혹은 링크등록중 하나만 선택하십시오.\n"; print "
설명은 간결하게 기록해 주십시오.\n"; print "
\n"; print "

\n"; print "\n"; print ""; print "\n"; print ""; print "\n"; print ""; print "\n"; print "\n"; print ""; print "\n"; print ""; print "\n"; print ""; $pcode = $pcode*43189669%(60*60*24*365) + 40000000; # 400000000~71535999 print "\n"; print "

"; print "성 명
"; print "E-MAIL Home-URL
"; print "비밀번호	"; print " (본인이 추후 삭제하려면 쓰십시오.)
"; print "자료분류	"; print "\n"; print "\n"; # @uptypelist = ('학습지도안', '보조자료','교수매체물', 'CAI', '그외'); # print "\n"; print "
"; print "화일등록 또는 링크등록	"; print "
"; print "설 명
"; print "등록인증번호	"; print " (자동생성방지를 위해 ".$pcode."를 입력하십시오.)

\n"; print ""; print ""; print "

\n"; print "\n"; } ######################################################################## if ($INV{'action'} eq "post2") { $err = ""; $err .= ($INV{'Author'} eq "") ? "성명난이 비어 있습니다
\n" : ""; @t = split('[:@]',$INV{'EMail'}); $err .= ( ($INV{'EMail'} ne "") && ($t[0] eq "" || $#t != 1) ) ? "E-MAIL 혹은 URL 주소를 확인하십시오
\n" : ""; $err .= ($INV{'upfile'} ne "" && $INV{'uplink'} ne "") ? "화일과 링크 중 하나만에 자료를 등록하십시오.
\n" : ""; $err .= ($INV{'uplink'} ne "" && $INV{'uplink'} !~ "^http://.") ? "UpLink URL 주소를 확인하십시오.
\n" : ""; $err .= ($INV{'Subject'} eq "") ? "설명난이 비어 있습니다
\n" : ""; $err .= (length($INV{'Subject'}) > 70 ) ? "설명난이 너무 깁니다
\n" : ""; $passcode = ($INV{'passcode'}-40000000) * 832429 % (60*60*24*365); $err .= ($pcode+($passcode<=$pcode?0:60*60*24*365) < $passcode+3600) ? "" : "등록인증번호를 확인해 주십시오
\n"; if ( $err ne "" ) {&error;} open (MSGNUM, "$data_txt"); $MsgNum = ; close MSGNUM; $MsgNum = ($MsgNum+1)%10000; if ($INV{'upfile'}) { @t = split(/\"/,$real_file); $full_name = $t[3]; @t = split(/[\/\\]/,$full_name); $org_name = ($t[$#t]); @t = split(/[.]/,$org_name); $ext_name = ($#t!=0) ? ".$t[$#t]" : ""; $cp_name = "$topicname2[$topicidx]-$MsgNum$ext_name"; $cp_name = "$org_name"; if (-e "$UpFiles/$cp_name") { $err = "exit"; &error; } elsif ( ! open(FILE, ">$UpFiles/$cp_name")) { $err = "File Opening Error"; &error; } binmode FILE; print FILE $INV{'upfile'}; close FILE; $size = (-s "$UpFiles/$cp_name"); $size = int($size/1024+.5); $size = "$size" . "k"; } else { $cp_name = substr($INV{'uplink'},7,length($INV{'uplink'})-7); $size = "http"; } open (MSGNUM, ">$data_txt"); print MSGNUM "$MsgNum\n"; close MSGNUM; $INV{'passwd'} =~ s/ //go; $INV{'passwd'} =~ s/^\t//go; &get_date; open (DATAF, ">>$list_txt"); print DATAF "$MsgNum|$INV{'passwd'}|$cp_name|"; print DATAF "$INV{'Author'}|$INV{'EMail'}|$INV{'Subject'}|"; print DATAF "$shortdate|$size|0|"; #print DATAF "$INV{'uptype'}|$ENV{'REMOTE_ADDR'}|$org_name\n"; print DATAF "$topicname2[$topicidx]|$ENV{'REMOTE_ADDR'}|$org_name\n"; close (DATAF); &openfile; &display; } ############################################################################## if ($INV{'action'} eq "remove") { open (DATAFILE, "$list_txt"); @Data = ; close (DATAFILE); foreach $Line (@Data) { @Temp = split(/\|/, $Line); if ($Temp[0] == $INV{'value'}) { $subject = $Temp[2]; } } if ($INV{'passwd'} eq "") { if ($INV{'name_2'} ne "") { $err = pass; &error; } &html_header("$subject 삭제"); print "이 화일을 삭제하려면 등록 당시의 비밀번호를 넣으시오\n"; print "

\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "

비밀번호		"; print "

\n"; print "

\n"; print "\n"; exit; } if ($INV{'passwd'} ne $admin_pass) { foreach $Line (@Data) { @Temp = split(/\|/, $Line); if ($Temp[0] == $INV{'value'}) { if ($INV{'passwd'} ne $Temp[1]) { $err = "pass"; &error; } } } } open (DATAFIL, ">$list_txt"); foreach $Line (@Data) { @Temp = split(/\|/, $Line); if ($Temp[0] == $INV{'value'}) { $rm_file = $Temp[2]; unlink ("$UpFiles/$rm_file"); } else { print DATAFIL "$Line"; } } close (DATAFIL); &openfile; &display; } ######################################################################################## sub get_input { if ($ENV{'QUERY_STRING'}) { @args = split(/&/, $ENV{'QUERY_STRING'}); foreach $pair (@args) { ($name, $value) = split(/=/, $pair); # Un-Webify plus signs and %-encoding $value =~ tr/+/ /; $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; $value =~ s///g; if ($AllowHTML != 1) { $value =~ s/<([^>]|\n)*>//g; } $INV{$name} = $value; } } else { $content_type = $ENV{'CONTENT_TYPE'}; $content_len = $ENV{'CONTENT_LENGTH'}; binmode STDIN; read(STDIN, $buffer, $content_len); if ((!$content_type) || ($content_type eq 'application/x-www-form-urlencoded')) { # Process the name=value argument pairs @args = split(/&/, $buffer); $data = ''; foreach $pair (@args) { ($name, $value) = split(/=/, $pair); # Unescape the argument value $value =~ tr/+/ /; $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; # Save the name=value pair for use below. $INV{$name} = $value; } } elsif ($content_type =~ m#^multipart/form-data#) { # find boundary ($boundary = $content_type) =~ s/^.*boundary=(.*)$/\1/; @pairs = split(/--$boundary/, $buffer); @pairs = splice(@pairs,1,$#pairs-1); for $part (@pairs) { ($dump,$fline,$value) = split(/\r\n/,$part,3); if($fline =~ /filename/) { $real_file = $fline; } next if $fline =~ /filename=\"\"/; $fline =~ s/^Content-Disposition: form-data; //; (@columns) = split(/;\s+/, $fline); ($name = $columns[0]) =~ s/^name="([^"]+)"$/\1/g; if ($#columns > 0) { if ($value =~ /^Content-Type:/) { ($dump,$dump,$value) = split(/\r\n/,$value,3); } else { ($dump,$value) = split(/\r\n/,$value,2); } } else { ($dump,$value) = split(/\r\n/,$value,2); if (grep(/^$name$/, keys(%CGI))) { if (@{$INV{$name}} > 0) { push(@{$INV{$name}}, $value); } else { $arrvalue = $INV{$name}; undef $INV{$name}; $INV{$name}[0] = $arrvalue; push(@{$INV{$name}}, $value); } } else { next if $value =~ /^\s*$/; $INV{$name} = $value; chop($INV{$name}); chop($INV{$name}); } next; } $INV{$name} = $value; } } else { print "Invalid content type!\n"; exit(1); } } } ################################################################################################################## sub error { &html_header("Access Denied
"); if ($err eq "pass") { print "등록 당시의 비밀번호가 아닙니다. 정확히 기록하여"; } elsif($err eq "exit") { print "첨부하는 화일이 이미 존재합니다.
이름을 바꾼 후에"; } else { print "$err"; } print "
죄송하지만 다시 시도 하십시오."; print "\n"; print "\n"; exit; } ############################################################ # 첨부화일 확인 ################################################# sub secu { if ($upname =~ /[;><&\*'\|\/\\]/ ) { &html_header("Security Problem"); print "The upload file name is invalid.\n"; print "\n"; exit(1); } } ################################################## # Write out the upload file ################################################# sub get_date { ($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst) = localtime(time); if ($sec < 10) { $sec = "0$sec"; } if ($min < 10) { $min = "0$min"; } if ($hour < 10) { $hour = "0$hour"; } if ($mday < 10) { $mday = "0$mday"; } if ($mon < 10) { $mon = "0$mon"; } if ($year<1900) {$year += 1900;} $month = ($mon + 1); if ($month < 10) { $month = "0$month"; } $date = "$year년 $month월$mday일/$hour시\:$min분\:$sec초"; $shortdate = "$year/$month/$mday"; } ########################################################## exit(0);